Get a Pentest and security assessment of your IT network.

Cyber Security

NSA Warns About Microsoft Exchange Flaw as Attacks Start

The U.S. National Security Agency has warned about a post-auth remote code execution vulnerability in all supported Microsoft Exchange Server servers. The vulnerability would enable attackers to execute commands on vulnerable Microsoft Exchange servers using email credentials. Microsoft patched the vulnerability as part of the February 2020 Patch Tuesday. State-backed advanced persistent threats (APT) groups have already exploited the CVE-2020-0688 flaw, researchers at security firm Volexity said. A new module targeting this flaw was added by Rapid7 to the Metasploit pen-testing tool following multiple proof-of-concept exploits.

Source: https://www.bleepingcomputer.com/news/security/nsa-warns-about-microsoft-exchange-flaw-as-attacks-start/

Related posts
Cyber Security

Zip Codes & PII: Are They Personal Data?

Cyber Security

Zero-Day Vulnerabilities: User Defence Guide

Cyber Security

Zero Knowledge Voting with Trusted Server

Cyber Security

ZeroNet: 51% Attack Risks & Mitigation